mirror of https://gitgud.io/fatchan/jschan.git
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
72 lines
1.9 KiB
72 lines
1.9 KiB
upstream chan {
|
|
server 127.0.0.1:7000;
|
|
}
|
|
|
|
server {
|
|
|
|
server_name www.xxxxxxxx.loki xxxxxxxx.loki;
|
|
|
|
client_max_body_size 0;
|
|
#address may vary if this address is already used by something other than lokinet
|
|
listen 172.16.0.1:80;
|
|
|
|
include /etc/nginx/snippets/security_headers.conf;
|
|
include /etc/nginx/snippets/error_pages.conf;
|
|
include /etc/nginx/snippets/jschan_loki_routes.conf;
|
|
include /etc/nginx/snippets/jschan_common_routes.conf;
|
|
|
|
}
|
|
|
|
server {
|
|
|
|
server_name www.xxxxxxxx.onion xxxxxxxx.onion;
|
|
|
|
client_max_body_size 0;
|
|
listen unix:/var/run/nginx-tor.sock;
|
|
allow "unix:";
|
|
deny all;
|
|
|
|
include /etc/nginx/snippets/security_headers.conf;
|
|
include /etc/nginx/snippets/error_pages.conf;
|
|
include /etc/nginx/snippets/jschan_tor_routes.conf;
|
|
include /etc/nginx/snippets/jschan_common_routes.conf;
|
|
|
|
}
|
|
|
|
server {
|
|
|
|
server_name www.example.com example.com;
|
|
|
|
client_max_body_size 0;
|
|
#header will tell tor users accessing clearnet endpoint to use onion service
|
|
add_header onion-location 'http://xxxxxxxxxxx.onion$request_uri';
|
|
|
|
include /etc/nginx/snippets/security_headers.conf;
|
|
include /etc/nginx/snippets/error_pages.conf;
|
|
include /etc/nginx/snippets/jschan_common_routes.conf;
|
|
include /etc/nginx/snippets/jschan_clearnet_routes.conf;
|
|
|
|
listen [::]:443 ssl ipv6only=on; # managed by Certbot
|
|
listen 443 ssl; # managed by Certbot
|
|
ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem; # managed by Certbot
|
|
ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem; # managed by Certbot
|
|
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
|
|
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
|
|
|
|
}
|
|
|
|
server {
|
|
if ($host = www.example.com) {
|
|
return 301 https://$host$request_uri;
|
|
} # managed by Certbot
|
|
|
|
if ($host = example.com) {
|
|
return 301 https://$host$request_uri;
|
|
} # managed by Certbot
|
|
|
|
server_name www.example.com example.com;
|
|
|
|
listen 80;
|
|
listen [::]:80;
|
|
return 444; # managed by Certbot
|
|
}
|
|
|